[thirdparty/kernel/linux.git] / security / selinux / ss / sidtab.h

/* SPDX-License-Identifier: GPL-2.0 */
/*
 * A security identifier table (sidtab) is a hash table
 * of security context structures indexed by SID value.
 *
 * Author : Stephen Smalley, <sds@tycho.nsa.gov>
 */
#ifndef _SS_SIDTAB_H_
#define _SS_SIDTAB_H_

#include "context.h"

struct sidtab_node {
	u32 sid;		/* security identifier */
	struct context context;	/* security context structure */
	struct sidtab_node *next;
};

#define SIDTAB_HASH_BITS 7
#define SIDTAB_HASH_BUCKETS (1 << SIDTAB_HASH_BITS)
#define SIDTAB_HASH_MASK (SIDTAB_HASH_BUCKETS-1)

#define SIDTAB_SIZE SIDTAB_HASH_BUCKETS

struct sidtab {
	struct sidtab_node **htable;
	unsigned int nel;	/* number of elements */
	unsigned int next_sid;	/* next SID to allocate */
	unsigned char shutdown;
#define SIDTAB_CACHE_LEN	3
	struct sidtab_node *cache[SIDTAB_CACHE_LEN];
	spinlock_t lock;
};

int sidtab_init(struct sidtab *s);
int sidtab_insert(struct sidtab *s, u32 sid, struct context *context);
struct context *sidtab_search(struct sidtab *s, u32 sid);
struct context *sidtab_search_force(struct sidtab *s, u32 sid);

int sidtab_map(struct sidtab *s,
	       int (*apply) (u32 sid,
			     struct context *context,
			     void *args),
	       void *args);

int sidtab_context_to_sid(struct sidtab *s,
			  struct context *context,
			  u32 *sid);

void sidtab_hash_eval(struct sidtab *h, char *tag);
void sidtab_destroy(struct sidtab *s);
void sidtab_set(struct sidtab *dst, struct sidtab *src);
void sidtab_shutdown(struct sidtab *s);

#endif	/* _SS_SIDTAB_H_ */
Commit	Line	Data
b2441318	1	/* SPDX-License-Identifier: GPL-2.0 */
1da177e4 LT	2	/*
	3	* A security identifier table (sidtab) is a hash table
	4	* of security context structures indexed by SID value.
	5	*
7efbb60b	6	* Author : Stephen Smalley, <sds@tycho.nsa.gov>
1da177e4 LT	7	*/
	8	#ifndef _SS_SIDTAB_H_
	9	#define _SS_SIDTAB_H_
	10
	11	#include "context.h"
	12
	13	struct sidtab_node {
	14	u32 sid; /* security identifier */
	15	struct context context; /* security context structure */
	16	struct sidtab_node *next;
	17	};
	18
	19	#define SIDTAB_HASH_BITS 7
	20	#define SIDTAB_HASH_BUCKETS (1 << SIDTAB_HASH_BITS)
	21	#define SIDTAB_HASH_MASK (SIDTAB_HASH_BUCKETS-1)
	22
	23	#define SIDTAB_SIZE SIDTAB_HASH_BUCKETS
	24
	25	struct sidtab {
	26	struct sidtab_node **htable;
	27	unsigned int nel; /* number of elements */
	28	unsigned int next_sid; /* next SID to allocate */
	29	unsigned char shutdown;
73ff5fc0 EP	30	#define SIDTAB_CACHE_LEN 3
73ff5fc0 EP	31	struct sidtab_node *cache[SIDTAB_CACHE_LEN];
1da177e4 LT	32	spinlock_t lock;
	33	};
	34
	35	int sidtab_init(struct sidtab *s);
	36	int sidtab_insert(struct sidtab s, u32 sid, struct context context);
	37	struct context sidtab_search(struct sidtab s, u32 sid);
12b29f34	38	struct context sidtab_search_force(struct sidtab s, u32 sid);
1da177e4 LT	39
	40	int sidtab_map(struct sidtab *s,
	41	int (*apply) (u32 sid,
	42	struct context *context,
	43	void *args),
	44	void *args);
	45
1da177e4 LT	46	int sidtab_context_to_sid(struct sidtab *s,
	47	struct context *context,
	48	u32 *sid);
	49
	50	void sidtab_hash_eval(struct sidtab h, char tag);
	51	void sidtab_destroy(struct sidtab *s);
	52	void sidtab_set(struct sidtab dst, struct sidtab src);
	53	void sidtab_shutdown(struct sidtab *s);
	54
	55	#endif /* _SS_SIDTAB_H_ */
	56
	57